Blog

May 2018: Connectify is GDPR Ready!

What Is GDPR and How Does It Impact Users?

The General Data Protection Regulation (GDPR) – (EU) 2016/679 – is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU. The GDPR kicks in on May 25th, 2018 and gives Europeans more rights over their personal data, as well as simplifying the regulatory environment for companies doing business within the EU.

The most important new rights for users under the GDPR are

Right of access – Users have a right to receive a copy of personal data collected about them

Right to be forgotten / erasure – Users can request erasure of personal data related to them

Right to know what 3rd parties can see the data a company keeps about them.

How does GDPR Impact Companies?

First of all, the GDPR applies to all organizations collecting data about users in the EU, regardless of where they’re based. Failure to comply with the GDPR can result in fines of up to 20 million EUR or up to 4% of the annual worldwide revenue, whichever is greater.

GDPR comes with new obligations for companies as well; here are a few of them:

Data minimization (collection and retention) – companies can only collect and keep data that is necessary for providing the products or services

Data breach procedures – companies now have up to 72 hours to report any data breaches to the supervisory authorities.

Transparent Privacy / Cookie Policy – New obligations to disclose precisely what data is being stored and who to contact about exercising user rights under the GDPR.